The Senior IAM Engineer will play a critical role in delivering secure and reliable identity services across Mattel鈥檚 enterprise. This position is responsible for implementing, supporting, and enhancing IAM and PAM solutions, including identity lifecycle automation, access controls, privileged account management, and integration with enterprise applications.
As a senior engineer, this role will act as an escalation point for complex IAM and PAM issues, lead troubleshooting and remediation efforts, and contribute to operational stability and compliance initiatives such as User Access Reviews (UARs) and audit reporting. The Sr. IAM Engineer will collaborate with IAM Architects, PAM Engineers, ITDR Analysts, and security teams to ensure secure, seamless, and compliant identity services while driving automation to reduce manual processes.
Objectives of this Role
Implement and support enterprise IAM and PAM platforms, ensuring high availability, security, and compliance.
Deliver identity lifecycle automation (Joiner-Mover-Leaver) and support integrations across Workday, Okta, AD/Entra ID, and other cloud or on-prem applications.
Administer and maintain Privileged Access Management solutions (e.g. CyberArk, Okta OPA, BeyondTrust, Delinea, Cerby).
Provide escalation support for complex IAM/PAM issues, integrations, and API troubleshooting.
Lead threat detection and incident response activities in collaboration with ITDR Analysts, using tools such as CrowdStrike ITP, Semperis DSP (or similar), with proven risk remediation capabilities.
Support compliance initiatives including User Access Reviews (UARs), audit reporting, and evidence gathering for SOX, PCI, and other frameworks.
Participate in disaster recovery planning, incident management, and risk remediation efforts.
Develop and maintain runbooks, workflows, and documentation for operational consistency and knowledge sharing.
Experience developing operational dashboards, metrics, and reporting using Security Information and Event Management (SIEM) and other tools (e.g. Grafana, Sumo Logic, CrowdStrike ITP etc.) to track IAM/PAM/ITDR effectiveness and risk.
Collaborate with cross-functional teams to deliver IAM services aligned with business and security objectives.
Additional duties may be assigned as necessary to meet the ongoing needs of the organization.
Work hours may vary, and the position may require availability during off-business hours as dictated by project needs, system changes, or security events.
.